Skip to Content
Oct 20, 2020 at 01:11 PM

How to restrict access based on regulation in GRC PC


HI Experts,

I am finding a way out to restrict access to auditors to view the data related to their regulation, for example a SOX auditor should only be able to view the data related to SOX regulation and not others. I dont see a way to restrict it from the authorization perspective as there is only one auth.objects being called which is GRFN_API and when i restrict the field values with regulation specific values it still provide access to other regulation as well so i dont see it is working. Please share your thoughts on this if you have implemented or know a way out to achieve this scenario. I have also tried to restrict it via entity level authorization and still no luck.